Adding radius attributes in PEAP

[Manuel Sánchez Cuenca]

Hello all,

I'm trying to add a radius attribute in the final ACCEPT message to the
user.

To do this, in the file "/modules/rlm_eap/types/rlm_eap_peap/peap.c" I
have included in the "process_reply" function the following code

       case PW_AUTHENTICATION_ACK:
                DEBUG2("  PEAP: Tunneled authentication was successful.");
                t->status = PEAP_STATUS_SENT_TLV_SUCCESS;
                eappeap_success(handler, tls_session);

                /* Include the handle attribute */
                VALUE_PAIR *aux;
                aux = pairmake("attribute", "value", T_OP_EQ);
                pairadd(&request->reply->vps, aux);

but then, when the user tries to access, the RADIUS server shows this error:

    rlm_eap_peap: SUCCESS

    rlm_eap: reply code 0 is unknown, Rejecting the request.

    rlm_eap: Freeing handler

    modcall[authenticate]: module "eap" returns reject for request 8


I Solved this problem including in my code this line:

            handler->eap_ds->request->code = PW_EAP_SUCCESS;

And now the server sends Access-Accept, but without the new attribute.

  rlm_eap_peap: SUCCESS
  rlm_eap: Freeing handler
  modcall[authenticate]: module "eap" returns ok for request 17
modcall: leaving group authenticate (returns ok) for request 17
Sending Access-Accept of id 17 to 155.54.204.140 port 1814
        EAP-Message = 0x030a0004
        Message-Authenticator = 0x00000000000000000000000000000000
        User-Name = "lolo"
        Proxy-State = 0x3935

Does anybody knows why the attribute is not being included in the response?

Thanks in advance.

-- 
-----------------------------
Manuel Sanchez Cuenca
Departamento de Ingenieria de la Informacion y las Comunicaciones
Facultad de Informatica. Universidad de Murcia
Campus de Espinardo - 30080 Murcia (SPAIN)
Tel.: +34-968-364644    Fax: +34-968-364151
email: msc at dif.um.es  |  manuelsc at um.es
url: http://libra.inf.um.es/~lolo